A phishing marketing campaign is impersonating HR to focus on workers who’re making annual insurance coverage adjustments through the open enrollment interval, in response to researchers at Irregular Safety.
The attackers are utilizing reputable notifications from Dropbox to ship phishing messages, asking recipients to view a doc on Dropbox relating to annual wage will increase and open enrollment elections.
If a consumer clicks the hyperlink, they’ll be taken to a Dropbox doc containing one other hyperlink that may redirect them to a spoofed Microsoft login web page designed to steal their credentials.
“Upon logging in, they will view the doc, which incorporates a mixture of impersonated Microsoft and Docusign branding to provide the appearance of legitimacy,” the researchers write.
“It additionally features a observe stating the file ‘comprises delicate info that has been encrypted’ in an try and additional reinforce the pretext that the doc was actually despatched from the HR division. When the goal clicks on both ‘REVIEW DOCUMENT’ or ‘DOWNLOAD DOCUMENT,’ they’re redirected to a spoofed Microsoft OneDrive portal and prompted to supply their Microsoft login credentials.”
Since each the e-mail and the hyperlink come from Dropbox, the messages are unlikely to be flagged as malicious.
“As beforehand talked about, the preliminary e mail is indistinguishable from an genuine Dropbox notification as a result of every part about it’s reputable—besides the intent behind it,” Irregular Safety explains. “Additional, in contrast to the overwhelming majority of phishing assaults, the malicious hyperlink isn’t contained throughout the e mail.
It exists inside a separate doc hosted on a real file-hosting service, and it’s solely after the goal leaves the e-mail setting and engages with the shared file that they’re uncovered to the phishing hyperlink.”
New-school safety consciousness coaching can provide your group a vital layer of protection in opposition to social engineering assaults. KnowBe4 empowers your workforce to make smarter safety selections day-after-day. Over 70,000 organizations worldwide belief the KnowBe4 platform to strengthen their safety tradition and cut back human threat.
Irregular Safety has the story.